Mitigating controls – is this a cure for “all evil” in excessive authorizations risks in SAP? Part #2/5 – When is it worth creating and when should mitigating controls be avoided?
